Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d8398e-232c-45c2-b8e0-9ce4767da2c1/1/r4TGygBoiGbY_j1_9YRvunmdAeI.roa
File: r4TGygBoiGbY_j1_9YRvunmdAeI.roa (raw, json)
Hash identifier: U+YozNO0/+Ol7oRV4h0/AIsrrV+MOBYO3/OP7HDwoXw=
Subject key identifier: AF:84:C6:CA:00:68:88:66:D8:FE:3D:7F:F5:84:6F:BA:79:9D:01:E2
Certificate issuer: /CN=a6a0434bebe5dfa63dda78c24a4ebc1d2cd7369d
Certificate serial: 018A4B0EA151154913D699436D44E0EBEF00
Authority key identifier: A6:A0:43:4B:EB:E5:DF:A6:3D:DA:78:C2:4A:4E:BC:1D:2C:D7:36:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBDS-vl36Y92njCSk68HSzXNp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d8398e-232c-45c2-b8e0-9ce4767da2c1/1/r4TGygBoiGbY_j1_9YRvunmdAeI.roa
Signing time: Thu 31 Aug 2023 10:06:04 +0000
ROA not before: Thu 31 Aug 2023 10:06:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208583
IP address blocks: 2a0a:56c4:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:0e:a1:51:15:49:13:d6:99:43:6d:44:e0:eb:ef:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a0434bebe5dfa63dda78c24a4ebc1d2cd7369d
Validity
Not Before: Aug 31 10:06:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af84c6ca00688866d8fe3d7ff5846fba799d01e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:45:0d:10:d3:8c:8e:84:05:98:87:e6:9e:f5:
51:ed:b5:fb:66:ef:85:b9:25:79:1e:aa:53:48:aa:
76:78:db:08:6b:39:0a:56:36:96:38:62:77:62:6c:
05:b7:05:80:a9:ef:5e:6c:f5:09:9b:37:40:2e:65:
44:6d:11:c7:b5:5f:30:88:15:3c:43:f2:f2:f0:75:
ec:0c:78:64:2d:47:fe:93:0e:1b:9e:4f:a0:48:32:
21:bb:41:38:68:06:b6:b9:5d:ad:27:ca:34:2e:35:
24:52:05:0f:bd:bf:ae:8e:39:30:1e:31:d0:fb:14:
72:b6:d8:ca:2f:b1:61:7d:03:87:4d:29:89:a6:e3:
60:d7:df:cf:bb:a3:49:9b:63:b2:d9:41:92:d9:c8:
0f:4c:f9:6c:95:87:4b:cb:d4:77:fa:b9:dc:a0:c1:
d7:f3:87:1c:cb:0d:6b:39:cb:fe:fa:d5:a6:45:dd:
9f:fd:3d:18:67:2c:83:4a:25:44:4e:35:68:00:d8:
d7:84:40:e7:16:85:f5:fb:30:52:cc:44:b9:d5:c3:
66:6f:6c:9d:2c:e5:11:c0:63:ad:7e:df:f0:a7:9d:
93:61:20:ed:3e:51:3c:71:44:8f:1b:16:fb:dc:e0:
c7:14:b9:d7:d4:9c:7f:59:9e:dc:e4:7c:29:64:11:
1b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:84:C6:CA:00:68:88:66:D8:FE:3D:7F:F5:84:6F:BA:79:9D:01:E2
X509v3 Authority Key Identifier:
keyid:A6:A0:43:4B:EB:E5:DF:A6:3D:DA:78:C2:4A:4E:BC:1D:2C:D7:36:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBDS-vl36Y92njCSk68HSzXNp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d8398e-232c-45c2-b8e0-9ce4767da2c1/1/r4TGygBoiGbY_j1_9YRvunmdAeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d8398e-232c-45c2-b8e0-9ce4767da2c1/1/pqBDS-vl36Y92njCSk68HSzXNp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:56c4:4::/48
Signature Algorithm: sha256WithRSAEncryption
a2:83:8d:89:78:11:7a:48:05:c4:78:fb:8b:f8:b4:7c:a0:81:
a2:af:ff:fe:97:5e:97:66:c4:1b:6c:12:60:11:92:ad:68:df:
5e:6d:8f:57:96:3a:b4:34:c0:93:ea:9b:93:24:5b:80:77:bd:
5c:0e:19:de:49:7a:1c:ec:a2:77:6a:ea:19:f2:17:fd:78:0f:
7a:d2:1c:be:f3:77:8a:c6:10:57:fe:f4:89:a5:bc:22:98:01:
53:05:60:01:14:ad:b7:a2:01:4f:27:ca:ce:23:ac:f3:3a:c7:
3c:2c:aa:2c:92:c4:81:0a:0f:55:24:58:02:8c:03:6e:d0:86:
36:3b:2f:e0:f4:a2:7c:df:80:80:13:3e:ca:53:69:59:99:a9:
c6:86:83:74:f5:96:af:1b:bc:48:17:b4:61:34:67:32:b6:bd:
9d:6a:5f:bb:d1:cb:8b:1e:0b:7f:c1:21:2d:ad:ad:c2:b3:35:
96:44:56:72:97:eb:55:d7:03:4e:96:be:90:ec:62:e4:01:f2:
e5:4a:d7:ad:fe:31:c1:11:1d:23:ce:34:2f:27:fd:f0:45:b5:
af:3a:e8:36:dc:3a:47:1c:e8:32:59:13:8a:5c:3d:9f:af:94:
95:4f:df:61:4f:55:e5:45:17:db:81:8b:38:64:b6:51:3e:c9:
fb:6d:af:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:41 2024 by rpki-client on console-ams.rpki-client.org